Post on 09-May-2015
description
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 1
2
Cyber Defence in the Corporate World
Paul King
Senior Security Advisor
Cisco System
pking@cisco.com
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 3
Risk
“How do we know what we know we don’t know?”
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 4
The Network of 15 Years Ago
Closed Network
Remote Site
PSTN
Frame RelayX.25
Leased Line
PSTN
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 5
The Network Today
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 6
Impact Risk
Risk – What is it?
Vulnerability
Threat
Asset
Likelihood
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 7
How is a Business Threatened?
VirusOutbreakDDoS
Theft
Loss of Information
WebsiteDefacement
WWW
Damage to reputation (CEO)
FinancialLoss(CFO)
DisruptionTo business(CIO)
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 8
Leader-led, but Includes Everyone
“Security starts with me, the CEO, down to the individual contributor level… it’s mandatory.”
John ChambersChairman and CEO
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 9
People
People: Your Greatest Security Asset
“Cisco's open culture facilitates a proactive, positive and rewarding approach to security awareness and education — one that empowers security champions across the company to do their part to keep Cisco secure.
– Mia Bradway Winter Cisco Sr. Security Awareness Program Manager– Mia Bradway Winter Cisco Sr. Security Awareness Program Manager
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 10
Pervasive awareness and education programs
Cross-collaborative efforts of constituents
Policies, guidelines and essential practices
Rewards for exemplary security related behavior
Compelling set of marketing activities and communications
Training & Education
Be A Security Champion
Creative Communications
We Are The Targets
Marketing Collateral Award-winning Programs
Awareness and Education Driven
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 11
…Our Process…
Signature-based How Anomaly-Based
Specialized Security Expertise
What Defense Automation
Use a Firewall! WhenUse technologies
pervasively
Internet Facing Where System-wide
Detect Attacks Who Find Attackers
ThenThen NowNow
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 12
A Day in the Life of My Corporate Laptop
Cisco
INTERNET
Home Office
05:00
VPN
VPN
Firewall
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 13
Cisco
INTERNET
07:00
A Day in the Life of My Corporate Laptop
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 14
Cisco
INTERNET
08:00
VPN
Train Station
Public Hotspot
A Day in the Life of My Corporate Laptop
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 15
Cisco
INTERNET
08:10
Train Station
A Day in the Life of My Corporate Laptop
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 16
Cisco
INTERNET
12:00
A Day in the Life of My Corporate Laptop
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 17
Cisco
INTERNET
Home Office
20:00
VPN
VPN
Firewall
A Day in the Life of My Corporate Laptop
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 18
Concluding Thoughts
© 2010 Cisco Systems, Inc. All rights reserved. Cisco PublicIP EXPO 2010 20
FOR FURTHER QUESTIONS AND TO SEE OUR TECHNOLOGY DEMOS,
VISIT US AT STAND 660